svn commit: samba r264 - in branches/tmp/VOYAGER/source:
groupdb include libsmb nsswitch passdb smbd
Tim Potter
tpot at samba.org
Sun Apr 18 00:13:07 GMT 2004
On Sat, Apr 17, 2004 at 11:29:43PM +0000, vlendec at samba.org wrote:
> Yet another variation on the winbind scheme. Thanks to a suggestions by jerry
> this implements a way for winbind to prove own smbd that it's really winbind
> who is calling. This works by an randomly invented protocol that winbind
> stores as a key in secrets.tdb. Hmmm. Just thought that we could have a fixed
This sounds a lot like abarlett's scheme for ensuring the PAM_AUTH_CRAP
command can't be run be arbitrary users.
> Another idea: How much effort would it be for smbd to listen on a unix domain
> socket in a private directory?
And this sounds like the PRIV_PIPE_DIR winbindd command. (-:
Tim.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.samba.org/archive/samba-technical/attachments/20040418/fbd0ad8a/attachment.bin
More information about the samba-technical
mailing list